From nobody Tue Mar 26 18:21:55 2024 X-Original-To: freebsd-questions@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4V3ynL4Wzzz5FYG3 for ; Tue, 26 Mar 2024 18:21:58 +0000 (UTC) (envelope-from cryintothebluesky@gmail.com) Received: from mail-wm1-x335.google.com (mail-wm1-x335.google.com [IPv6:2a00:1450:4864:20::335]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1D4" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4V3ynK6bWNz55YM for ; Tue, 26 Mar 2024 18:21:57 +0000 (UTC) (envelope-from cryintothebluesky@gmail.com) Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20230601 header.b="RsfTQEk/"; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of cryintothebluesky@gmail.com designates 2a00:1450:4864:20::335 as permitted sender) smtp.mailfrom=cryintothebluesky@gmail.com Received: by mail-wm1-x335.google.com with SMTP id 5b1f17b1804b1-4149046e7a3so4658405e9.2 for ; Tue, 26 Mar 2024 11:21:57 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1711477316; x=1712082116; darn=freebsd.org; h=content-transfer-encoding:mime-version:message-id:subject:to:from :date:from:to:cc:subject:date:message-id:reply-to; bh=ZoSmQ1jwNWt0W5nws6LYr7HBA9Nxl/jLP1ystQ+S594=; b=RsfTQEk/vdFaPY1AzVWKQunZk+zv716x9rUigLK5I33MkGG8K8PGLDuLMXiUB6ebd4 kLz5oZACxCDBm/0DvzCdJR60s9OjIkd/BUN9slYKIodjr1ftTG0aidMnMqaoCjL21bR4 240cFdV4XRH0x1HkX4b/NgfeownpU2tYD8fVAOV/IbDyY5EjUgBfxg46Otqcebt7QpJy eRglrcU2+cwyAVA0KXOys4Xf4ILi/B/NadBZlAY++9ThuTAwzfL0XfdT2ksV68kjOUpf TamUaubjHD6JXdZR3bpNShTCrD47ZCmZNZ/zE1EnEsRDFlEwJvCj9gnGNQSRo2vAaTvd jqVA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1711477316; x=1712082116; h=content-transfer-encoding:mime-version:message-id:subject:to:from :date:x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=ZoSmQ1jwNWt0W5nws6LYr7HBA9Nxl/jLP1ystQ+S594=; b=sIyLuvrYgoAqt1x90lfhUi2V2DShXGKeMM2va5zKk6ziv6axISzdmRXlzC2YiDdSXq u9Fz6ejNyPLewngV8eK00DqaCwDYxUkibQCBYW+1vaymTL5PBqKWHBESLDBUnVtujKfj J5WBPftD5KQIU1XQuWHAESuKi9665dYfspjo9kUEJ/3dsjIpA6PgN+/1Y4SJ0rybtGMW JkdUzbVo8F3AXOaTP8gSg3YhbKmNmfv6NXMILXJIdEzynOTA1+cSURhixO96uAPjKtZv Ml/Gp/rHoefF0fC4cYFyno2guLr6HVs7fj9VASBCV1UPhWhuUv509QDfq6ebCGxyjxeI Vplw== X-Gm-Message-State: AOJu0YyGtnJFkMpTGzmdvedmAvHWkbIZiyP/Xd2u+Bck+R9VE1rHY7tq k4C8Ndw8jV8veGeVHV2XOex3OYu9VP95rLY1n4PcWeLv1nytYnXgspv4m2B+ X-Google-Smtp-Source: AGHT+IGzhi/8nDqg7VnFbh5pUgxL7Aaz8E3Z9S9grzJ8TOF9txp1BeqM0wX/JaQQvvkTSB6Vlq4gPw== X-Received: by 2002:a05:600c:358a:b0:414:8865:bfc0 with SMTP id p10-20020a05600c358a00b004148865bfc0mr6133658wmq.0.1711477316189; Tue, 26 Mar 2024 11:21:56 -0700 (PDT) Received: from z600.home.lan (239.85.199.146.dyn.plus.net. [146.199.85.239]) by smtp.gmail.com with ESMTPSA id h8-20020a05600004c800b0033b66c2d61esm12693389wri.48.2024.03.26.11.21.55 for (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Tue, 26 Mar 2024 11:21:55 -0700 (PDT) Date: Tue, 26 Mar 2024 18:21:55 +0000 From: Sad Clouds To: freebsd-questions@FreeBSD.org Subject: local-unbound vs. dns/unbound Message-Id: <20240326182155.f49f1239901deabb0dafb84d@gmail.com> X-Mailer: Sylpheed 3.7.0 (GTK+ 2.24.32; x86_64-pc-linux-gnu) List-Id: User questions List-Archive: https://lists.freebsd.org/archives/freebsd-questions List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-questions@freebsd.org X-BeenThere: freebsd-questions@freebsd.org Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Spamd-Bar: --- X-Spamd-Result: default: False [-3.42 / 15.00]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; NEURAL_HAM_LONG(-1.00)[-1.000]; NEURAL_HAM_SHORT(-0.92)[-0.923]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; MV_CASE(0.50)[]; R_SPF_ALLOW(-0.20)[+ip6:2a00:1450:4000::/36]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20230601]; MIME_GOOD(-0.10)[text/plain]; RCVD_TLS_LAST(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; RCPT_COUNT_ONE(0.00)[1]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ARC_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; FREEMAIL_FROM(0.00)[gmail.com]; FROM_HAS_DN(0.00)[]; ASN(0.00)[asn:15169, ipnet:2a00:1450::/32, country:US]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim]; TO_DN_NONE(0.00)[]; RCVD_COUNT_TWO(0.00)[2]; FROM_EQ_ENVFROM(0.00)[]; DKIM_TRACE(0.00)[gmail.com:+]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; MID_RHS_MATCH_FROM(0.00)[]; MLMMJ_DEST(0.00)[freebsd-questions@freebsd.org]; RCVD_VIA_SMTP_AUTH(0.00)[]; RCVD_IN_DNSWL_NONE(0.00)[2a00:1450:4864:20::335:from] X-Rspamd-Queue-Id: 4V3ynK6bWNz55YM Hello, apologies if this has been asked before, but what is the difference between local-unbound vs. ports dns/unbound? Is local-unbound a cut down version of dns/unbound with missing features? If yes, what features are missing then? I would like to use unbound as a caching DNS resolver + make it available to other clients on a local LAN for use with DNSSEC and TLS. Can local-unbound be configured to support local LAN clients, or should I use dns/unbound instead? Thanks. From nobody Tue Mar 26 19:40:28 2024 X-Original-To: freebsd-questions@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4V40X01NrSz5FgTT for ; Tue, 26 Mar 2024 19:40:32 +0000 (UTC) (envelope-from johnl@iecc.com) Received: from gal.iecc.com (gal.iecc.com [IPv6:2001:470:1f07:1126:0:43:6f73:7461]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "gal.iecc.com", Issuer "Let's Encrypt Authority X3" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 4V40Wz412Lz42tv for ; Tue, 26 Mar 2024 19:40:31 +0000 (UTC) (envelope-from johnl@iecc.com) Authentication-Results: mx1.freebsd.org; none Received: (qmail 69594 invoked from network); 26 Mar 2024 19:40:29 -0000 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed; d=iecc.com; h=date:message-id:from:to:cc:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:cleverness; s=10fd8660324ad.k2403; bh=T7Vbia/w8dMCIVr7xqtWewHHEn40kU0Fb3tE4urtGg0=; b=Bzl3I3tDide364W1gLADw9p1JsakUdymrlDVwexfooNR3xIGhuqjOq+i3pn+uU1LVxiDuFSJSyBaXAWmp8Kc4lQzFOwBwuFRKzFxCK8so+/5/XEbpckq1qYaQoGpzJdcLbjg8lc2iGxLOUK8fGwd+mahp1DwrA9SljOeFQbzqu+RkPO9xdTD02tkwvW/4vSQ68ab9MNCDNAtxHVDbtF88TldrmD3OolecoMEGBZz+4Hk+4MKjLsHZl+Tb4AexodmBelNsbAYnk7G0Nzw+QnA4ba8TJMVVik/5+nVFMEqv9I1yKIVeh8cDwx9Tuk5XBA2OUzsY7+ZWjPTUvwUI4E91w== Received: from ary.qy ([IPv6:2001:470:1f07:1126::78:696d:6170]) by imap.iecc.com ([IPv6:2001:470:1f07:1126::78:696d:6170]) with ESMTPS (TLS1.3 ECDHE-RSA CHACHA20-POLY1305 AEAD) via TCP6; 26 Mar 2024 19:40:28 -0000 Received: by ary.qy (Postfix, from userid 501) id 516F58634567; Tue, 26 Mar 2024 15:40:28 -0400 (EDT) Date: 26 Mar 2024 15:40:28 -0400 Message-Id: <20240326194028.516F58634567@ary.qy> From: "John Levine" To: freebsd-questions@freebsd.org Cc: cryintothebluesky@gmail.com Subject: Re: local-unbound vs. dns/unbound In-Reply-To: <20240326182155.f49f1239901deabb0dafb84d@gmail.com> Organization: Taughannock Networks X-Headerized: yes Cleverness: minimal List-Id: User questions List-Archive: https://lists.freebsd.org/archives/freebsd-questions List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-questions@freebsd.org X-BeenThere: freebsd-questions@freebsd.org Mime-Version: 1.0 Content-type: text/plain; charset=utf-8 Content-transfer-encoding: 8bit X-Spamd-Bar: ---- X-Rspamd-Pre-Result: action=no action; module=replies; Message is reply to one we originated X-Spamd-Result: default: False [-4.00 / 15.00]; REPLY(-4.00)[]; ASN(0.00)[asn:6939, ipnet:2001:470::/32, country:US] X-Rspamd-Queue-Id: 4V40Wz412Lz42tv It appears that Sad Clouds said: >Hello, apologies if this has been asked before, but what is the >difference between local-unbound vs. ports dns/unbound? It's a copy of unbound with a setup script that configures it as a cache to run on 127.0.0.1. It looks in /etc/resolv.conf to use any DNS forwarding you've set up and some other places for stuff that seems more exotic. If you're using the unbound port or package that's instead of local-unbound. The package version is updated more often, currently 1.19.1 vs. 1.17.1 for local-unbound on fbsd 13.3. R's, John From nobody Tue Mar 26 20:47:28 2024 X-Original-To: freebsd-questions@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4V421J53zCz5Fn3J for ; Tue, 26 Mar 2024 20:47:32 +0000 (UTC) (envelope-from cryintothebluesky@gmail.com) Received: from mail-lj1-x235.google.com (mail-lj1-x235.google.com [IPv6:2a00:1450:4864:20::235]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1D4" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4V421J2wdQz49f3 for ; Tue, 26 Mar 2024 20:47:32 +0000 (UTC) (envelope-from cryintothebluesky@gmail.com) Authentication-Results: mx1.freebsd.org; none Received: by mail-lj1-x235.google.com with SMTP id 38308e7fff4ca-2d094bc2244so78672811fa.1 for ; Tue, 26 Mar 2024 13:47:32 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1711486050; x=1712090850; darn=freebsd.org; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:subject:cc:to:from:date:from:to:cc:subject:date :message-id:reply-to; bh=fRkXyxQj3bHIab7TZxc9cIx7PmABui2B4S3UmdM46+0=; b=Dq5Gwl4bJPG6TOm61LFroLXC2+5Kzde1LruOwI/inXoSXoOaXwHdo2D6fs6k0b2ku0 Nn3eOjp6bSeWSvFfJGivjkOCPSS7Gbn3ZkmRbcCDivdwwulVvNZMRU9yEc/nGq7jIfef EQMqe48OtTxLZ6jEmZuMv67uNKo8G0mH7Tu6Q5+UJk0rQwhfsuSpwxuSciEJT57Pku30 E44QI+CBYS2MLmIMTPG/LVe1iw12IRVo6ToyzmYMaGJOoYWUfBIA+X/rin/3vM9p3RtI HZANa/EXiOjVogwqUHjlOg0hAy4TBkYMHPZMR11WWkpFt9WGmCP3/lnI1A9K3F8y5RDJ +mVg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1711486050; x=1712090850; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:subject:cc:to:from:date:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=fRkXyxQj3bHIab7TZxc9cIx7PmABui2B4S3UmdM46+0=; b=jyWb9ey5e8JAesAnfGIF7QXC792panEzL1kcxzLL0OZ9c7kCrp7DdMlig+Ws3Y3+9J fbF0CCkMhS/IbZ+dNf6hXQ7yG1/DSSbpGiB0xqE6ijAcToIsbyhccfHcu1429xEPOL43 S6fqXrtFVaLAZo98VcvHPpKpjN/G+i0ii00ehKfj3r5VxZl/RO3ZnvcUDhTMGVy5kwFx X2N0oLx2oew3dnQNrVxvw5pj/m2UZ1CksFBAwefLSF8D874U5lrTgnqTw+kS1xGViEjb YzFGnA9WgboPncA+EqSC0bUp07MpWg62mLrLF58yf4cJF7nYJ/Eo80ICErRHTbH48GSD 2FEQ== X-Gm-Message-State: AOJu0YzEl+7n1wxI41IhpkTa5R6QHkgwirhDJIt4zeskhMq5rNLAnBG2 0JKfotQJA2yVtU9veqFBK8vIr/cGTXVGY/mjUuL70SLDxLJCZDXZmTy0074x X-Google-Smtp-Source: AGHT+IGxl8uL6epVSHcAwAhfLA25GY5IYuAJZaZURKYn4Irs68fC5VTCMSyKH6o82ki8XW/WJhH88Q== X-Received: by 2002:a05:651c:a10:b0:2d6:d7ff:5d3a with SMTP id k16-20020a05651c0a1000b002d6d7ff5d3amr5137111ljq.14.1711486049615; Tue, 26 Mar 2024 13:47:29 -0700 (PDT) Received: from z600.home.lan (239.85.199.146.dyn.plus.net. [146.199.85.239]) by smtp.gmail.com with ESMTPSA id g8-20020a05600c310800b0041488cfd0fesm52727wmo.28.2024.03.26.13.47.29 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Tue, 26 Mar 2024 13:47:29 -0700 (PDT) Date: Tue, 26 Mar 2024 20:47:28 +0000 From: Sad Clouds To: "John Levine" Cc: freebsd-questions@freebsd.org Subject: Re: local-unbound vs. dns/unbound Message-Id: <20240326204728.77de2d013a1cf546b8abe03d@gmail.com> In-Reply-To: <20240326194028.516F58634567@ary.qy> References: <20240326182155.f49f1239901deabb0dafb84d@gmail.com> <20240326194028.516F58634567@ary.qy> X-Mailer: Sylpheed 3.7.0 (GTK+ 2.24.32; x86_64-pc-linux-gnu) List-Id: User questions List-Archive: https://lists.freebsd.org/archives/freebsd-questions List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-questions@freebsd.org X-BeenThere: freebsd-questions@freebsd.org Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Spamd-Bar: ---- X-Rspamd-Pre-Result: action=no action; module=replies; Message is reply to one we originated X-Spamd-Result: default: False [-4.00 / 15.00]; REPLY(-4.00)[]; ASN(0.00)[asn:15169, ipnet:2a00:1450::/32, country:US] X-Rspamd-Queue-Id: 4V421J2wdQz49f3 On 26 Mar 2024 15:40:28 -0400 "John Levine" wrote: > It appears that Sad Clouds said: > >Hello, apologies if this has been asked before, but what is the > >difference between local-unbound vs. ports dns/unbound? > > It's a copy of unbound with a setup script that configures it as > a cache to run on 127.0.0.1. It looks in /etc/resolv.conf to use > any DNS forwarding you've set up and some other places for > stuff that seems more exotic. > > If you're using the unbound port or package that's instead of > local-unbound. The package version is updated more often, currently > 1.19.1 vs. 1.17.1 for local-unbound on fbsd 13.3. > > R's, > John Thanks. I'm not too fussed about using the latest version, as long as functionality is mostly the same. I'll play around with local-unbound and see if I can make it work for my use cases. I have a specific config I need to use, which I copied from my NetBSD unbound setup. Hopefully FreeBSD local-unbound config scripts are flexible enough to allow override of 127.0.0.1 and allow me to configure it my way. From nobody Tue Mar 26 22:01:34 2024 X-Original-To: freebsd-questions@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4V43pT5lH0z5Ftk9 for ; Tue, 26 Mar 2024 22:08:17 +0000 (UTC) (envelope-from johnl@iecc.com) Received: from gal.iecc.com (gal.iecc.com [IPv6:2001:470:1f07:1126:0:43:6f73:7461]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "gal.iecc.com", Issuer "Let's Encrypt Authority X3" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 4V43pT3yggz4Hnf for ; Tue, 26 Mar 2024 22:08:17 +0000 (UTC) (envelope-from johnl@iecc.com) Authentication-Results: mx1.freebsd.org; none Received: (qmail 93482 invoked from network); 26 Mar 2024 22:01:35 -0000 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed; d=iecc.com; h=date:message-id:from:to:cc:subject:in-reply-to:references:mime-version:content-type; s=16d25660345bf.k2403; bh=BhaSzHWJOps9SZvsNwGx+KB9Y0sn/UuP1zHd26SenVo=; b=pB7fckkQ1qkCBU/t/0gb5+/54zmuXm4oG9mHNm/A+RxWkUlay06EapTTr6sE6cXwb4YWDLDh/OObcQkPRIg6Qho6ZscaSZjutlGQ3nH+AdoXq1Jg5ZA58iAP9oHwfWzrZuvhZLVf/9fHF8uIMAfGoMT3dhxXgqB3uwRRyBxnIZMUaJt9xZBr1oMrwrXNmUJ9OJFdNwoA4nNpHbI59By33qpInCZW5J7jh8ulqx3KMkt53HQHqek+f6TYq/1gOdcu11xAJ8n/DxwUt9htAveZctn4ckaoeHdyk7Uo9HU0hlXjDKauAbIZIB6xRCwxdPOIrlGREJQftlUgOM07PwxtfQ== Received: from ary.qy ([IPv6:2001:470:1f07:1126::78:696d:6170]) by imap.iecc.com ([IPv6:2001:470:1f07:1126::78:696d:6170]) with ESMTPS (TLS1.3 ECDHE-RSA CHACHA20-POLY1305 AEAD) via TCP6; 26 Mar 2024 22:01:35 -0000 Received: by ary.qy (Postfix, from userid 501) id 168998636606; Tue, 26 Mar 2024 18:01:34 -0400 (EDT) Received: from localhost (localhost [127.0.0.1]) by ary.qy (Postfix) with ESMTP id D726C86365E8; Tue, 26 Mar 2024 18:01:34 -0400 (EDT) Date: 26 Mar 2024 18:01:34 -0400 Message-ID: From: "John R. Levine" To: "Sad Clouds" Cc: freebsd-questions@freebsd.org X-X-Sender: johnl@ary.qy Subject: Re: local-unbound vs. dns/unbound In-Reply-To: <20240326204728.77de2d013a1cf546b8abe03d@gmail.com> References: <20240326182155.f49f1239901deabb0dafb84d@gmail.com> <20240326194028.516F58634567@ary.qy> <20240326204728.77de2d013a1cf546b8abe03d@gmail.com> List-Id: User questions List-Archive: https://lists.freebsd.org/archives/freebsd-questions List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-questions@freebsd.org X-BeenThere: freebsd-questions@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; format=flowed; charset=us-ascii X-Spamd-Bar: ---- X-Rspamd-Pre-Result: action=no action; module=replies; Message is reply to one we originated X-Spamd-Result: default: False [-4.00 / 15.00]; REPLY(-4.00)[]; ASN(0.00)[asn:6939, ipnet:2001:470::/32, country:US] X-Rspamd-Queue-Id: 4V43pT3yggz4Hnf >> >> It's a copy of unbound with a setup script that configures it as >> a cache to run on 127.0.0.1. It looks in /etc/resolv.conf to use >> any DNS forwarding you've set up and some other places for >> stuff that seems more exotic. > Thanks. I'm not too fussed about using the latest version, as long as > functionality is mostly the same. I'll play around with local-unbound > and see if I can make it work for my use cases. As far as I know, it's the same program with a different setup script. My main concern is that the setup script might overrwrite your changes when you do a system upgrade. Regards, John Levine, johnl@taugh.com, Primary Perpetrator of "The Internet for Dummies", Please consider the environment before reading this e-mail. https://jl.ly From nobody Wed Mar 27 08:03:48 2024 X-Original-To: freebsd-questions@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4V4K1j52M8z5Gglv for ; Wed, 27 Mar 2024 08:03:53 +0000 (UTC) (envelope-from cryintothebluesky@gmail.com) Received: from mail-wm1-x332.google.com (mail-wm1-x332.google.com [IPv6:2a00:1450:4864:20::332]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1D4" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4V4K1j3Kcdz48MC for ; Wed, 27 Mar 2024 08:03:53 +0000 (UTC) (envelope-from cryintothebluesky@gmail.com) Authentication-Results: mx1.freebsd.org; none Received: by mail-wm1-x332.google.com with SMTP id 5b1f17b1804b1-41494c040a1so1959565e9.2 for ; Wed, 27 Mar 2024 01:03:53 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1711526630; x=1712131430; darn=freebsd.org; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:subject:cc:to:from:date:from:to:cc:subject:date :message-id:reply-to; bh=TyiQEFK3AeaamXLFHpU3WkR32HqwhMJQbFHEhGpCy0w=; b=CcHMqlnHkbOmF4vba96RARoyvySfMxfz0QAR168BgJyOtXMAm5H2WzuhbzXSqAD6la mIAXIjb70J2+Ru86fQx/PPOMJ04olp8dtsYBHEf/zkrHOg4rLScG/++dT5Q8gVLRXOCY 43kw9kz+XY04zQKlm2LBOsAhwqelZV7GiNlcJgLu2s3FmjwOefzAV1mR1BMv6fux2d67 H9994YBk75rdy7Vdj9WK90rCfAdRqmY2PWuiYH0+9hBHm55bnjdz+wfN9pPcdljId9xA Zz15zPum9lu3+yOqe6I1takHid7rWLEiXPHlPZGKEQoSOPkSb0iUt+2PPa+kx4w75pTA PGYg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1711526630; x=1712131430; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:subject:cc:to:from:date:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=TyiQEFK3AeaamXLFHpU3WkR32HqwhMJQbFHEhGpCy0w=; b=JFj/hgBkKYLmVgfncC76GZrxpb66RYBPzXhVMQqjwByfF7Qq+pFB8fzIam4Of5hyio 3MFTv51FSLuqReq4Tl7BnT1e3APqHd2JG5dFE0SQrDM+7Yg6V6jk5g1BwIBXz95RqqAF uydOW+n/jyv+t/fBuWQVY8ovUGyTOnmajjcnPVW0M6QCqx200DTT6SkVp57EfdfXOU58 Y/NmnjVCGrovyLPTwmosEwkx/uNVS4P7DxUgzIZiny8Q+kQ0JogDu+jrH2NReDg297Hb qe1m1BB017KONF51c389ApDdXnp3TmWN8OPsoCVlXFcJ1iLMA/kyLYPUqoyfucBjJDxn 3K4w== X-Gm-Message-State: AOJu0Yw0/5L3l5swzDpd1Fj224u/UIYE73PsjtF01y7ABGP6krBSAVp7 byuSF5somLdau/iomiiB6OdkNv8ipdV7Ky1GnyV0Y2hHH+uGkJry X-Google-Smtp-Source: AGHT+IE5sJZPRkNNcn+D453EV+rhbY00hEyfcbu9x+Ykaf2gNSowCvMczhg0G96JGNVh+T0413oanQ== X-Received: by 2002:a05:600c:5120:b0:414:9141:1462 with SMTP id o32-20020a05600c512000b0041491411462mr418325wms.28.1711526629402; Wed, 27 Mar 2024 01:03:49 -0700 (PDT) Received: from z600.home.lan (111.129.159.143.dyn.plus.net. [143.159.129.111]) by smtp.gmail.com with ESMTPSA id dx23-20020a05600c63d700b00414887d9329sm1314383wmb.46.2024.03.27.01.03.48 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Wed, 27 Mar 2024 01:03:49 -0700 (PDT) Date: Wed, 27 Mar 2024 08:03:48 +0000 From: Sad Clouds To: "John R. Levine" Cc: freebsd-questions@freebsd.org Subject: Re: local-unbound vs. dns/unbound Message-Id: <20240327080348.4c7759fef2c361536b942116@gmail.com> In-Reply-To: References: <20240326182155.f49f1239901deabb0dafb84d@gmail.com> <20240326194028.516F58634567@ary.qy> <20240326204728.77de2d013a1cf546b8abe03d@gmail.com> X-Mailer: Sylpheed 3.7.0 (GTK+ 2.24.32; x86_64-pc-linux-gnu) List-Id: User questions List-Archive: https://lists.freebsd.org/archives/freebsd-questions List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-questions@freebsd.org X-BeenThere: freebsd-questions@freebsd.org Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Spamd-Bar: ---- X-Rspamd-Pre-Result: action=no action; module=replies; Message is reply to one we originated X-Spamd-Result: default: False [-4.00 / 15.00]; REPLY(-4.00)[]; ASN(0.00)[asn:15169, ipnet:2a00:1450::/32, country:US] X-Rspamd-Queue-Id: 4V4K1j3Kcdz48MC On 26 Mar 2024 18:01:34 -0400 "John R. Levine" wrote: > >> > >> It's a copy of unbound with a setup script that configures it as > >> a cache to run on 127.0.0.1. It looks in /etc/resolv.conf to use > >> any DNS forwarding you've set up and some other places for > >> stuff that seems more exotic. > > > Thanks. I'm not too fussed about using the latest version, as long as > > functionality is mostly the same. I'll play around with local-unbound > > and see if I can make it work for my use cases. > > As far as I know, it's the same program with a different setup script. > > My main concern is that the setup script might overrwrite your changes > when you do a system upgrade. > > Regards, > John Levine, johnl@taugh.com, Primary Perpetrator of "The Internet for Dummies", > Please consider the environment before reading this e-mail. https://jl.ly Hello, I had a look at it and it appears people already thought of this: # ls -l /var/unbound/ total 24 drwxr-xr-x 2 unbound unbound 512 Nov 10 07:07 conf.d -rw-r--r-- 1 root unbound 193 Mar 27 07:25 control.conf -rw-r--r-- 1 root unbound 223 Mar 27 07:25 forward.conf -rw-r--r-- 1 root unbound 189 Mar 27 07:25 lan-zones.conf -rw-r--r-- 1 unbound unbound 758 Mar 27 07:25 root.key -rw-r--r-- 1 root unbound 411 Mar 27 07:25 unbound.conf In the conf.d directory I can put my customisations that get included via unbound.conf The only issue I found is that the logic in /etc/rc.d/local_unbound script is a bit buggy. With no config files in /var/unbound it generates correct config: # sysrc local_unbound_enable=YES # sysrc local_unbound_tls=YES # sysrc local_unbound_forwarders="1.0.0.1@853#one.one.one.one 1.1.1.1@853#one.one.one.one" # service local_unbound start Performing initial setup. destination: Extracting forwarders from /etc/resolv.conf. /var/unbound/forward.conf created /var/unbound/lan-zones.conf created /var/unbound/control.conf created /var/unbound/unbound.conf created /etc/resolvconf.conf created Original /etc/resolv.conf saved as /var/backups/resolv.conf. 20240327.070818 Starting local_unbound. However if I later decide for example, to disable TLS: # service local_unbound stop # sysrc local_unbound_tls=NO local_unbound_tls: YES -> NO # service local_unbound start Starting local_unbound. Waiting for nameserver to start... good No config files are updated and TLS is still enabled: # cat /var/unbound/forward.conf # This file was generated by local-unbound-setup. # Modifications will be overwritten. forward-zone: name: . forward-tls-upstream: yes forward-addr: 1.0.0.1@853#one.one.one.one forward-addr: 1.1.1.1@853#one.one.one.one This is due to this function in /etc/rc.d/local_unbound which runs setup only if unbound config file is missing. local_unbound_prestart() { # Create configuration file if [ ! -f ${local_unbound_config} ] ; then run_rc_command setup fi # Retrieve DNSSEC root key if [ ! -s ${local_unbound_anchor} ] ; then run_rc_command anchor fi } I guess the workaround is to "rm -f /var/unbound/*" after changes to rc.conf From nobody Wed Mar 27 11:40:48 2024 X-Original-To: freebsd-questions@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4V4Pr33Qznz5FJm3 for ; Wed, 27 Mar 2024 11:40:51 +0000 (UTC) (envelope-from des@freebsd.org) Received: from smtp.freebsd.org (smtp.freebsd.org [IPv6:2610:1c1:1:606c::24b:4]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "smtp.freebsd.org", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4V4Pr32xB6z4h3L; Wed, 27 Mar 2024 11:40:51 +0000 (UTC) (envelope-from des@freebsd.org) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1711539651; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=SWb39rJAx2mXCMGdRZRWZPC2rkj8Y9QI5kM4jwKRCbk=; b=hU20wM50vK4oPW7z3EnSl7WjMpMloaewNf+E5lY48q0KaxD42kfdyrsDxuEZWVVe91g53B FUDRmOdVfUdDeaZSZ2uZO+CRijKu40px7dcLYUQ54y1OOyhelVrY15YUiy/OnKkevPzYdd BFx8o4hen9+I86POOL6FEsY8WREqnFT3vG4zX5AGZ10QYTsEF+1feJb6RHZFz6WbNXOntb 2HcX2yJ2TEKPow12h8bgtekgBNmx/+tEjbnu8vQChcc+6c1aB+MHPuEX6tVCzD+vetkNQJ 1vvWlJV92V/GPeXOAIE7m1o9FZRwwur0a0pKI0a7uAKpGHJGqqcfeT7movoV9w== ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1711539651; a=rsa-sha256; cv=none; b=cMV1O1Y6ZpB9L31yr7VIxi5qfV5S1QjCrmHojL2Q6RTiKfatfDOYph+Y1crC5UflpuEOgN VYaz5KOTRCX0sixIhMr1VmnHsTivhKq0taTyTRY92Cx+qq8RCV7cMe7cFGHq27jC5SbXmM 8cIujle4SDUsihonCDNyeqAeYuYmTM44/dr6AYqNX9IhRB+RVSiv/AAPqApD5tbAktxHiM zVOZERDRd7UF+G9muvqx+Ip3u+IUomZ23P4495LyTx7PegJlMwXjQTLDwB6xgGvqaD3Ou4 kp4pnEtRSlPKoeTDHaFee+T3trH3HrPQBCYJJqUIKVVj4SPNmIBi/yvFA3/0Jw== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1711539651; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=SWb39rJAx2mXCMGdRZRWZPC2rkj8Y9QI5kM4jwKRCbk=; b=Lt79dJRFLvBGXo4OkgV8yLYIqydDVtEFvEIpz1EWeryBZgaYtKvt/7URqGNrNur3jrpQBH iUyJrpQ6/ciLZr7VexHMkO5GZnufc0NwFHEEK+UqZao2x1tS6RZ/g/S6H7koaDyZY8ZvG0 ng7lf6AlP8FbHNFEV2svkYKtGSzDcYkCMQHDtcG1FSoTGG7GFvj+RLbSJOwiYwqZdU3sVL tUgE3VmTNoqYmqsgCNGsWh6XKaWI5iFHM09qTJ23H1yv2EWbb2DD9qBK9b+VvAPBAqSwoJ cwNwTj80HA3tqE9jsCPksX62Iwz4BwDqv4qjWkm0ytpMfzg2nZS8KzXR/UQNHg== Received: from ltc.des.dev (163.23.65.37.rev.sfr.net [37.65.23.163]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) (Authenticated sender: des) by smtp.freebsd.org (Postfix) with ESMTPSA id 4V4Pr31n58zQJS; Wed, 27 Mar 2024 11:40:51 +0000 (UTC) (envelope-from des@freebsd.org) Received: by ltc.des.dev (Postfix, from userid 1001) id 032647836B; Wed, 27 Mar 2024 12:40:49 +0100 (CET) From: =?utf-8?Q?Dag-Erling_Sm=C3=B8rgrav?= To: Sad Clouds Cc: "John R. Levine" , freebsd-questions@freebsd.org Subject: Re: local-unbound vs. dns/unbound In-Reply-To: <20240327080348.4c7759fef2c361536b942116@gmail.com> (Sad Clouds's message of "Wed, 27 Mar 2024 08:03:48 +0000") References: <20240326182155.f49f1239901deabb0dafb84d@gmail.com> <20240326194028.516F58634567@ary.qy> <20240326204728.77de2d013a1cf546b8abe03d@gmail.com> <20240327080348.4c7759fef2c361536b942116@gmail.com> User-Agent: Gnus/5.13 (Gnus v5.13) Date: Wed, 27 Mar 2024 12:40:48 +0100 Message-ID: <86ttkrewcf.fsf@ltc.des.dev> List-Id: User questions List-Archive: https://lists.freebsd.org/archives/freebsd-questions List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-questions@freebsd.org X-BeenThere: freebsd-questions@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable Sad Clouds writes: > This is due to this function in /etc/rc.d/local_unbound which runs > setup only if unbound config file is missing. Yes, this is intentional. > I guess the workaround is to "rm -f /var/unbound/*" after changes to > rc.conf No, just run `service local_unbound setup` followed by `service local_unbound reload`. DES --=20 Dag-Erling Sm=C3=B8rgrav - des@FreeBSD.org From nobody Wed Mar 27 14:43:45 2024 X-Original-To: freebsd-questions@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4V4Tv93m2Yz5Fc0N for ; Wed, 27 Mar 2024 14:43:49 +0000 (UTC) (envelope-from cryintothebluesky@gmail.com) Received: from mail-wm1-x32c.google.com (mail-wm1-x32c.google.com [IPv6:2a00:1450:4864:20::32c]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1D4" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4V4Tv86Flrz42j0; Wed, 27 Mar 2024 14:43:48 +0000 (UTC) (envelope-from cryintothebluesky@gmail.com) Authentication-Results: mx1.freebsd.org; none Received: by mail-wm1-x32c.google.com with SMTP id 5b1f17b1804b1-4149783d9b0so1585295e9.2; Wed, 27 Mar 2024 07:43:48 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1711550627; x=1712155427; darn=freebsd.org; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:subject:cc:to:from:date:from:to:cc:subject:date :message-id:reply-to; bh=ThZz3+Tg/VEkG3enlQzD0PE53x606R0a+CPUBtVXPIw=; b=LMhaDfiSoBqy/AKbWkahktdq1wvbyzZnbT6UvBqme7mfhcSDx18qa1FwJojcgZ/mzz BLeE8yBtbgUXSd0IyFxFKUOdiz54MAapin7h79KCnRbfgCmvg5ADXaZNNikUMZsxcsQ3 jVYb9kZBjApFTlH9q7BDFcrDhMb7DI3s2ilUOjD+pT9Iq90Qb37c6wsucMR28k5SoSja xeH1fbLpD6JjgWlbvEQzDbnMj7uVae0OdJcTlUXfZIjXJSMXgVjxdJv3T36/9KrwG6/P 3ByYWZuM8/qwWhUbZzcB0UtG1mkLmsvpHhDjBBTSMLao2pwCc6+tyxYif1ym6KaqKm6L f/QA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1711550627; x=1712155427; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:subject:cc:to:from:date:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=ThZz3+Tg/VEkG3enlQzD0PE53x606R0a+CPUBtVXPIw=; b=xM8XETdOJ2/vJLXGJIOoLhg0q/fIg4azERvkwHdWcxUcz2c4GyDqM2V/8poWjGqY86 oS/UQuPIVemu87tBZswfxX/DdLRM5jaAxNyBEympriCeD68mWuLXZWu2F+40l4iSu3h3 2LGNFlnn817n8z5TLi0x6yR4SHpa3FtAcLqQhluRidSdIawRi2lns66+I28Bj+ToOxOb KUXWl36K+6pVEz9dz9yYRvZidPGo0kKpAAM28MPlClxz8mc8GyCxC1BPt04/Hd0JXD+/ uvzIfbasOMvglxrHx+WETS/nSMYPgU6tce3geyGdFagIwVuBZfQZf1OBIfGahAL70k0N fHFw== X-Forwarded-Encrypted: i=1; AJvYcCXvjQrN/Jwi7IYsNIKknfb0sYVKvvOQeJHG6nE9kIXxRG1iT5xARCdiGbnCe5MHh+138t0fY0TjTeogrKA7ka/lwSwPPHLSFILTx3hITQ== X-Gm-Message-State: AOJu0YzzTbFDUfbjtGO8sZlhLQjvrXGeINlmC/0KT9yhZraK3OrKcC+9 0KeWURiI7g90+fCEOp1YeOj2TeLeNGfjfBnr875/84vEhDcYuL95uTJOj+ax X-Google-Smtp-Source: AGHT+IFk6+pbPgsL/FHUy/Qn+9qMCKwf40nmaFVxvTM5bYp9wpwRWVcpQNJzSytGwc2i33E03OnF4g== X-Received: by 2002:adf:e263:0:b0:341:b997:7a4b with SMTP id bl35-20020adfe263000000b00341b9977a4bmr98783wrb.34.1711550627020; Wed, 27 Mar 2024 07:43:47 -0700 (PDT) Received: from z600.home.lan (111.129.159.143.dyn.plus.net. [143.159.129.111]) by smtp.gmail.com with ESMTPSA id bs20-20020a056000071400b00341de138a2esm2454909wrb.94.2024.03.27.07.43.46 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Wed, 27 Mar 2024 07:43:46 -0700 (PDT) Date: Wed, 27 Mar 2024 14:43:45 +0000 From: Sad Clouds To: Dag-Erling =?ISO-8859-1?Q?Sm=F8rgrav?= Cc: "John R. Levine" , freebsd-questions@freebsd.org Subject: Re: local-unbound vs. dns/unbound Message-Id: <20240327144345.10032f5f1d39f18edc188b54@gmail.com> In-Reply-To: <86ttkrewcf.fsf@ltc.des.dev> References: <20240326182155.f49f1239901deabb0dafb84d@gmail.com> <20240326194028.516F58634567@ary.qy> <20240326204728.77de2d013a1cf546b8abe03d@gmail.com> <20240327080348.4c7759fef2c361536b942116@gmail.com> <86ttkrewcf.fsf@ltc.des.dev> X-Mailer: Sylpheed 3.7.0 (GTK+ 2.24.32; x86_64-pc-linux-gnu) List-Id: User questions List-Archive: https://lists.freebsd.org/archives/freebsd-questions List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-questions@freebsd.org X-BeenThere: freebsd-questions@freebsd.org Mime-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable X-Spamd-Bar: ---- X-Rspamd-Pre-Result: action=no action; module=replies; Message is reply to one we originated X-Spamd-Result: default: False [-4.00 / 15.00]; REPLY(-4.00)[]; ASN(0.00)[asn:15169, ipnet:2a00:1450::/32, country:US] X-Rspamd-Queue-Id: 4V4Tv86Flrz42j0 On Wed, 27 Mar 2024 12:40:48 +0100 Dag-Erling Sm=F8rgrav wrote: > Sad Clouds writes: > > This is due to this function in /etc/rc.d/local_unbound which runs > > setup only if unbound config file is missing. >=20 > Yes, this is intentional. >=20 > > I guess the workaround is to "rm -f /var/unbound/*" after changes to > > rc.conf >=20 > No, just run `service local_unbound setup` followed by `service > local_unbound reload`. OK got it, thanks for the info. From nobody Wed Mar 27 14:53:04 2024 X-Original-To: freebsd-questions@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4V4V5v61jnz5FcbV for ; Wed, 27 Mar 2024 14:53:07 +0000 (UTC) (envelope-from cryintothebluesky@gmail.com) Received: from mail-wm1-x32d.google.com (mail-wm1-x32d.google.com [IPv6:2a00:1450:4864:20::32d]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1D4" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4V4V5v0p6jz45RS for ; Wed, 27 Mar 2024 14:53:07 +0000 (UTC) (envelope-from cryintothebluesky@gmail.com) Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20230601 header.b=akrjJ5fh; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of cryintothebluesky@gmail.com designates 2a00:1450:4864:20::32d as permitted sender) smtp.mailfrom=cryintothebluesky@gmail.com Received: by mail-wm1-x32d.google.com with SMTP id 5b1f17b1804b1-41490d05bafso14421845e9.1 for ; Wed, 27 Mar 2024 07:53:07 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1711551185; x=1712155985; darn=freebsd.org; h=content-transfer-encoding:mime-version:message-id:subject:to:from :date:from:to:cc:subject:date:message-id:reply-to; bh=nzNJ55OtmIT4jb5VRxanKUMVkX3TYShLwEpgXvMTqZQ=; b=akrjJ5fhels+ZCpOctqQ1s6OSaIVc8YbZRLzGGgPjMIBaugmkpEAm+VFtFk30f6tXP eQv3RwqQf2btWKZbLEr7K6FjQ7wPB96SkdtN1fwpLYuq2O7oEGDUr5/EalZCYwx1FvwB mGdIdjhX43+zhcVrSrmHzMwWQXBVFQXkoQBZ+LMH2uvAwcFrp+C+W/VeoP9NWSAPcn1F cNsUh76y6+q9BqW0OEfUMqjmTUMtClY+ng8umtO9JwNPYAhjdegpAaMtGE3YOWxc0eOL AH5C/tTSuPpDT7HmGTrgizX2kjKZHkXVbF1qCqWK7KbGZSvIb4ey2nq5eLZCA3CTp2op QNKQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1711551185; x=1712155985; h=content-transfer-encoding:mime-version:message-id:subject:to:from :date:x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=nzNJ55OtmIT4jb5VRxanKUMVkX3TYShLwEpgXvMTqZQ=; b=DuoCzImmoit8cLsQDwRHzKB7pncS+qktgepb+TZtd/QJTZ3avViFCroh1qzkswLF/B sMyY9EX/9btb46J0x0swgnoh4C6QJ4z+cIT1LLNQmJPvXLuMfa6jKfkqSuiiXPFN0wBm UwrwB1uBYqLD7rx5oQc0OVw9FRtSRGU6x2DjvHxzOu0Q4VDTG/FIVzqNEz5ccz/4rlWY I5Qv/GTI2M29+R7Nh7r2ZCCs5I7v17gHgxOl7FW46YnsxKB88Bi3gvR7B7HNawdXMsEy zJzahWYCoqTQ/rN3vjLYin32fx6FdH2xKLoqovqzLW3Gp2qpB7Yxu4aSTlmOqEvYoUWZ 6rWA== X-Gm-Message-State: AOJu0Yz91TmKbqmA8dABxboJJxPfKghhktMn0seSONhGxaaNymMl4+cx DhonSriXzLnV7eDFU5GD7JC4NYoTxkPiCIkMNBr/x9oRddx2PVEYdHT2LWtu X-Google-Smtp-Source: AGHT+IE3XEMg2PFYre/evAyUatitZBQyrDmh/7xnY1OQKzmw99DC7UqdCKS2F5Qqgk/G8qH57UAtBQ== X-Received: by 2002:a05:600c:3149:b0:414:833f:404d with SMTP id h9-20020a05600c314900b00414833f404dmr225043wmo.36.1711551185375; Wed, 27 Mar 2024 07:53:05 -0700 (PDT) Received: from z600.home.lan (111.129.159.143.dyn.plus.net. [143.159.129.111]) by smtp.gmail.com with ESMTPSA id e9-20020a05600c4e4900b004148bc72f7csm2418200wmq.4.2024.03.27.07.53.04 for (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Wed, 27 Mar 2024 07:53:05 -0700 (PDT) Date: Wed, 27 Mar 2024 14:53:04 +0000 From: Sad Clouds To: freebsd-questions@FreeBSD.org Subject: Issues with single user mode on FreeBSD-14 and RPi4 Message-Id: <20240327145304.215b17dd60271ac8cca6acd6@gmail.com> X-Mailer: Sylpheed 3.7.0 (GTK+ 2.24.32; x86_64-pc-linux-gnu) List-Id: User questions List-Archive: https://lists.freebsd.org/archives/freebsd-questions List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-questions@freebsd.org X-BeenThere: freebsd-questions@freebsd.org Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Spamd-Bar: --- X-Spamd-Result: default: False [-3.49 / 15.00]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; NEURAL_HAM_LONG(-1.00)[-1.000]; NEURAL_HAM_SHORT(-0.99)[-0.995]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; MV_CASE(0.50)[]; R_SPF_ALLOW(-0.20)[+ip6:2a00:1450:4000::/36:c]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20230601]; MIME_GOOD(-0.10)[text/plain]; RCVD_TLS_LAST(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; ARC_NA(0.00)[]; FREEMAIL_ENVFROM(0.00)[gmail.com]; RCPT_COUNT_ONE(0.00)[1]; MIME_TRACE(0.00)[0:+]; FREEMAIL_FROM(0.00)[gmail.com]; FROM_HAS_DN(0.00)[]; ASN(0.00)[asn:15169, ipnet:2a00:1450::/32, country:US]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim]; TO_DN_NONE(0.00)[]; RCVD_COUNT_TWO(0.00)[2]; FROM_EQ_ENVFROM(0.00)[]; DKIM_TRACE(0.00)[gmail.com:+]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; MID_RHS_MATCH_FROM(0.00)[]; MLMMJ_DEST(0.00)[freebsd-questions@freebsd.org]; RCVD_VIA_SMTP_AUTH(0.00)[]; RCVD_IN_DNSWL_NONE(0.00)[2a00:1450:4864:20::32d:from] X-Rspamd-Queue-Id: 4V4V5v0p6jz45RS Hello, with FreeBSD-14 on Raspberry Pi 4, I am not able to get login prompt when booting single user mode: OK boot -s ... kernel loads Dual Console: Serial Primary, Video Secondary and the above is the last message, then it sits there, no login prompt, no response from keyboard. Any ideas how to resolve this? Is single mode not loading some console process? I don't have a serial console, instead it is connected to the first HDMI port. Booting multi user works with no issues though. Thanks. From nobody Wed Mar 27 16:57:15 2024 X-Original-To: questions@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4V4XsL0rBRz5FpQN for ; Wed, 27 Mar 2024 16:57:26 +0000 (UTC) (envelope-from gpiero@rm-rf.it) Received: from charlotte.rm-rf.it (charlotte.rm-rf.it [149.28.228.198]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4V4XsK2P3mz4Mg5 for ; Wed, 27 Mar 2024 16:57:25 +0000 (UTC) (envelope-from gpiero@rm-rf.it) Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of gpiero@rm-rf.it designates 149.28.228.198 as permitted sender) smtp.mailfrom=gpiero@rm-rf.it Received: from valentina.fdc.rm-rf.it (valentina.fdc.rm-rf.it [192.168.192.1]) by charlotte.fdc.rm-rf.it (OpenSMTPD) with ESMTP id 6e974e7d for ; Wed, 27 Mar 2024 17:57:17 +0100 (CET) Received: from marcopolo.fdc.rm-rf.it (marcopolo.fdc.rm-rf.it [192.168.192.51]) by valentina.fdc.rm-rf.it (Postfix) with ESMTP id 4F9441F763 for ; Wed, 27 Mar 2024 17:57:16 +0100 (CET) Received: by marcopolo.fdc.rm-rf.it (Postfix, from userid 1000) id B39F81C48A6; Wed, 27 Mar 2024 17:57:15 +0100 (CET) Date: Wed, 27 Mar 2024 17:57:15 +0100 From: Gian Piero Carrubba To: questions@freebsd.org Subject: Re: Issues with single user mode on FreeBSD-14 and RPi4 Message-ID: References: <20240327145304.215b17dd60271ac8cca6acd6@gmail.com> List-Id: User questions List-Archive: https://lists.freebsd.org/archives/freebsd-questions List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-questions@freebsd.org X-BeenThere: freebsd-questions@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8; format=flowed Content-Disposition: inline In-Reply-To: <20240327145304.215b17dd60271ac8cca6acd6@gmail.com> X-Spamd-Bar: -- X-Spamd-Result: default: False [-2.80 / 15.00]; NEURAL_HAM_LONG(-1.00)[-1.000]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; NEURAL_HAM_SHORT(-1.00)[-0.995]; MID_RHS_NOT_FQDN(0.50)[]; R_SPF_ALLOW(-0.20)[+ip4:149.28.228.198]; MIME_GOOD(-0.10)[text/plain]; FROM_HAS_DN(0.00)[]; RCPT_COUNT_ONE(0.00)[1]; MISSING_XM_UA(0.00)[]; ASN(0.00)[asn:20473, ipnet:149.28.224.0/20, country:US]; MIME_TRACE(0.00)[0:+]; R_DKIM_NA(0.00)[]; MLMMJ_DEST(0.00)[questions@freebsd.org]; DMARC_NA(0.00)[rm-rf.it]; TO_DN_NONE(0.00)[]; FROM_EQ_ENVFROM(0.00)[]; RCVD_COUNT_THREE(0.00)[3]; TO_MATCH_ENVRCPT_ALL(0.00)[]; RCVD_TLS_LAST(0.00)[]; PREVIOUSLY_DELIVERED(0.00)[questions@freebsd.org]; ARC_NA(0.00)[] X-Rspamd-Queue-Id: 4V4XsK2P3mz4Mg5 * [Wed, Mar 27, 2024 at 02:53:04PM +0000] Sad Clouds: >OK boot -s >.. kernel loads >Dual Console: Serial Primary, Video Secondary > >and the above is the last message, then it sits there, no login prompt, >no response from keyboard. I think this should work: OK set console=vidconsole,comconsole OK boot -s Cheers, Gian Piero. From nobody Wed Mar 27 17:12:10 2024 X-Original-To: questions@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4V4YBR0gstz5Fqmc for ; Wed, 27 Mar 2024 17:12:15 +0000 (UTC) (envelope-from cryintothebluesky@gmail.com) Received: from mail-lf1-x12f.google.com (mail-lf1-x12f.google.com [IPv6:2a00:1450:4864:20::12f]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1D4" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4V4YBQ60Dyz4PSj for ; Wed, 27 Mar 2024 17:12:14 +0000 (UTC) (envelope-from cryintothebluesky@gmail.com) Authentication-Results: mx1.freebsd.org; none Received: by mail-lf1-x12f.google.com with SMTP id 2adb3069b0e04-513d212f818so7942136e87.2 for ; Wed, 27 Mar 2024 10:12:14 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1711559533; x=1712164333; darn=freebsd.org; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:subject:cc:to:from:date:from:to:cc:subject:date :message-id:reply-to; bh=j/Z4Y1FxGLSjzCplss97x+Q8kSAuM2bGOsFWiMJwcvY=; b=nSbp8vaX4vENrHublA/uEYq3U8nMYx65C3RdpsaQp9jytmNJA9GqyrMkOb6VudviXK AUm9J7x+exKYDLXJFEsEuh7R+R8LigZ+C6yU4ACSVV5/qyhmyg8c6D+FXubxZOiiPT+/ /eIMYEBvmeCKA7j2YxbBkJLGK7zCvdaWsO0/O2I2Yn/k7Y1XDvw3UNyt50ZTRwD8OoTY QU0XRElEKpag4RhZN/CbWWRHyqt8jl5HuJrQVJ5R8iD/fGyUsiwce95M+86EOZB2uB+q SuEKxMZeLuU6Yj+XRMgEOOZJq5VcsFC1WMYDInN841Z0ZetrYuOyUOX6z3TuXlmpgAAU UetQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1711559533; x=1712164333; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:subject:cc:to:from:date:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=j/Z4Y1FxGLSjzCplss97x+Q8kSAuM2bGOsFWiMJwcvY=; b=SHLbYvjAJqcgKRcC6A5whsUIXx/W1vFzsM1WEcozObfcFvk98keuT6fu6dNbGhmObX mQQd40zRD8Gon09FqZSvjpOTNdwLOElizIM6PxbD5bWEdM13a8YAce8MksONNGQ6CvFO 4Hay3MB5wohBfsb/Ykx7Vg9x+6JeXSTOhbCIkAWGYO8MJy1wbPNzt8cqtMr/AolGuLfu iRGQaF42Ku4KymxF/+IzXstD+BBR6x3snSl6aYqSv/XaSvSwbUuWeu+EVmyZTrnhRSUV premB68wPPc9UplbzamaMc7HUIhZhs5I91a6Tnl8OLUuwGIOBZpdMUBx4cHnqzVogdyC l60A== X-Gm-Message-State: AOJu0YzJWZW+e9eMSKu22rIlobZcvPh8nXm8QGebelyVsCreB2yv+Ije aG0ZvfB2fBD63QHaZL6Y/rqJoHQWW87U8wLaV1r4bmZ5FSrgmikBm7v3lsBx X-Google-Smtp-Source: AGHT+IEGzrnZJvJ7TAiojxwE7/3nzV7Itz28+MqDz1clSecmIRn05wbeAE9K2lrH3OvzMRi8HlBDmw== X-Received: by 2002:a05:6512:3285:b0:513:c658:799b with SMTP id p5-20020a056512328500b00513c658799bmr50658lfe.55.1711559532566; Wed, 27 Mar 2024 10:12:12 -0700 (PDT) Received: from z600.home.lan (111.129.159.143.dyn.plus.net. [143.159.129.111]) by smtp.gmail.com with ESMTPSA id e20-20020a196914000000b00513d5ad26a5sm1918582lfc.99.2024.03.27.10.12.11 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Wed, 27 Mar 2024 10:12:12 -0700 (PDT) Date: Wed, 27 Mar 2024 17:12:10 +0000 From: Sad Clouds To: Gian Piero Carrubba Cc: questions@freebsd.org Subject: Re: Issues with single user mode on FreeBSD-14 and RPi4 Message-Id: <20240327171210.0377cb94eb3d47d9f6d36d73@gmail.com> In-Reply-To: References: <20240327145304.215b17dd60271ac8cca6acd6@gmail.com> X-Mailer: Sylpheed 3.7.0 (GTK+ 2.24.32; x86_64-pc-linux-gnu) List-Id: User questions List-Archive: https://lists.freebsd.org/archives/freebsd-questions List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-questions@freebsd.org X-BeenThere: freebsd-questions@freebsd.org Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Spamd-Bar: ---- X-Rspamd-Pre-Result: action=no action; module=replies; Message is reply to one we originated X-Spamd-Result: default: False [-4.00 / 15.00]; REPLY(-4.00)[]; ASN(0.00)[asn:15169, ipnet:2a00:1450::/32, country:US] X-Rspamd-Queue-Id: 4V4YBQ60Dyz4PSj On Wed, 27 Mar 2024 17:57:15 +0100 Gian Piero Carrubba wrote: > * [Wed, Mar 27, 2024 at 02:53:04PM +0000] Sad Clouds: > >OK boot -s > >.. kernel loads > >Dual Console: Serial Primary, Video Secondary > > > >and the above is the last message, then it sits there, no login prompt, > >no response from keyboard. > > I think this should work: > > OK set console=vidconsole,comconsole > OK boot -s > > Cheers, > Gian Piero. > Hello, thanks for the suggestion, but this did not help to resolve the issue. By trial and error, I managed to resolve it by commenting out boot_serial="YES" from /boot/loader.conf and I now get a login prompt with "boot -s" I copied /boot/loader.conf from the official FreeBSD RPi image. Not sure why this setting messes things up with single user mode. This is what my /boot/loader.conf looks like now: hw.usb.template=3 umodem_load="YES" # Multiple console (serial+efi gop) enabled. boot_multicons="YES" #boot_serial="YES" # Disable the beastie menu and color beastie_disable="YES" loader_color="NO" From nobody Thu Mar 28 15:20:16 2024 X-Original-To: freebsd-questions@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4V56fq3wvkz5G6y9 for ; Thu, 28 Mar 2024 15:20:19 +0000 (UTC) (envelope-from steve@copacetic.net) Received: from starlight.copacetic.net (starlight.copacetic.net [166.78.105.238]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4V56fp5D0Sz4pp3 for ; Thu, 28 Mar 2024 15:20:18 +0000 (UTC) (envelope-from steve@copacetic.net) Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of steve@copacetic.net designates 166.78.105.238 as permitted sender) smtp.mailfrom=steve@copacetic.net Received: from [172.16.200.151] (unknown [73.149.127.197]) (using TLSv1.2 with cipher AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by starlight.copacetic.net (Postfix) with ESMTPSA id 824484A8DA for ; Thu, 28 Mar 2024 15:20:17 +0000 (UTC) Message-ID: Date: Thu, 28 Mar 2024 11:20:16 -0400 List-Id: User questions List-Archive: https://lists.freebsd.org/archives/freebsd-questions List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-questions@freebsd.org X-BeenThere: freebsd-questions@freebsd.org MIME-Version: 1.0 User-Agent: Mozilla Thunderbird To: freebsd-questions@FreeBSD.org Content-Language: en-US From: Steve Bernacki Subject: 14.0-RELEASE-p6 High acpi_task_* CPU utilization Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 8bit X-Spamd-Bar: -- X-Spamd-Result: default: False [-2.93 / 15.00]; NEURAL_HAM_LONG(-1.00)[-1.000]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; NEURAL_HAM_SHORT(-0.74)[-0.742]; R_SPF_ALLOW(-0.20)[+ip4:166.78.105.238]; ONCE_RECEIVED(0.10)[]; MIME_GOOD(-0.10)[text/plain]; XM_UA_NO_VERSION(0.01)[]; RCVD_VIA_SMTP_AUTH(0.00)[]; RCPT_COUNT_ONE(0.00)[1]; RCVD_COUNT_ONE(0.00)[1]; MIME_TRACE(0.00)[0:+]; FREEFALL_USER(0.00)[steve]; ASN(0.00)[asn:19994, ipnet:166.78.64.0/18, country:US]; R_DKIM_NA(0.00)[]; ARC_NA(0.00)[]; TO_DN_NONE(0.00)[]; FROM_EQ_ENVFROM(0.00)[]; FROM_HAS_DN(0.00)[]; MID_RHS_MATCH_FROM(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; DMARC_NA(0.00)[copacetic.net]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; MLMMJ_DEST(0.00)[freebsd-questions@FreeBSD.org]; RCVD_TLS_ALL(0.00)[] X-Rspamd-Queue-Id: 4V56fp5D0Sz4pp3 Hello, I've just installed FreeBSD 14.0-RELEASE-p6 (GENERIC) on a AWOW Mini PC [1]. Completely idle, top(1) reports unusually high system CPU usage:   CPU:  0.0% user,  0.0% nice, 27.7% system,  0.0% interrupt, 72.3% idle Running top -SH reveals that the CPU time is being consumed by kernel acpi_tasks:   PID USERNAME    PRI NICE   SIZE    RES STATE    C   TIME    WCPU COMMAND    11 root        187 ki31     0B    64K CPU0     0  29:22  97.15% idle{idle: cpu0}    11 root        187 ki31     0B    64K RUN      2  22:05  74.21% idle{idle: cpu2}    11 root        187 ki31     0B    64K CPU3     3  22:11  73.37% idle{idle: cpu3}    11 root        187 ki31     0B    64K RUN      1  21:59  70.21% idle{idle: cpu1}     0 root          8    -     0B  1456K -        0   8:08  29.74% kernel{acpi_task_1}     0 root          8    -     0B  1456K CPU3     3   8:30  28.67% kernel{acpi_task_2}     0 root          8    -     0B  1456K CPU1     1   8:31  26.09% kernel{acpi_task_0} The BIOS configurables for this system are pretty sparse; I'm not able to see or adjust any ACPI settings. Relevant (I hope) snippets from dmesg below: ====== CPU: Intel(R) Celeron(R) CPU N3450 @ 1.10GHz (1094.62-MHz K8-class CPU)   Origin="GenuineIntel"  Id=0x506c9  Family=0x6  Model=0x5c Stepping=9 Features=0xbfebfbff Features2=0x4ff8ebb7   AMD Features=0x2c100800   AMD Features2=0x101   Structured Extended Features=0x2294e283   XSAVE Features=0xf   VT-x: PAT,HLT,MTF,PAUSE,EPT,UG,VPID,VID,PostIntr   TSC: P-state invariant, performance statistics real memory  = 6442450944 (6144 MB) avail memory = 5978120192 (5701 MB) Event timer "LAPIC" quality 600 ACPI APIC Table: [snip] smbios0: at iomem 0xf05e0-0xf05fe smbios0: Version: 3.0, BCD Revision: 3.0 aesni0: acpi0: acpi0: Power Button (fixed) unknown: I/O range not supported ACPI Error: No handler for Region [ECF2] (0xfffff800038c2680) [EmbeddedControl] (20221020/evregion-292) ACPI Error: Region EmbeddedControl (ID=3) has no handler (20221020/exfldio-428) ACPI Error: Aborting method \134_SB.PCI0.SBRG.H_EC.BAT0._STA due to previous error (AE_NOT_EXIST) (20221020/psparse-689) cpu0: on acpi0 attimer0: port 0x40-0x43,0x50-0x53 irq 0 on acpi0 [snip] Timecounter "ACPI-fast" frequency 3579545 Hz quality 900 acpi_timer0: <32-bit timer at 3.579545MHz> port 0x408-0x40b on acpi0 acpi_ec0: port 0x62,0x66 on acpi0 pcib0: port 0xcf8-0xcff on acpi0 pci0: on pcib0 ====== Relevant kenv output: ====== acpi.oem="ALASKA" acpi.revision="2" acpi.rsdp="0x000f05b0" acpi.rsdt="0x793a5030" acpi.xsdt="0x00000000793a50c0" acpi.xsdt_length="36" acpi_dsdt_load="NO" acpi_dsdt_name="/boot/acpi_dsdt.aml" acpi_dsdt_type="acpi_dsdt" acpi_video_load="NO" hint.acpi_throttle.0.disabled="1" smbios.bios.reldate="09/30/2022" smbios.bios.revision="4.6" smbios.bios.vendor="American Megatrends Inc." smbios.bios.version="4.06" smbios.chassis.type="Mini PC" smbios.memory.enabled="6291456" smbios.planar.maker="AWOW Technology Co., Ltd." smbios.planar.product="PC BOX" smbios.system.product="AK34" ====== The few search results for similar issues I've found suggest trying to disable ACPI altogether, which just results in the kernel immediately panicking when booting. Any suggestions on how I can troubleshoot this further? Thank you Steve [1] https://www.amazon.com/gp/product/B0B4RMLCH7/?th=1 From nobody Thu Mar 28 18:07:24 2024 X-Original-To: freebsd-questions@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4V5BMh5r09z5GQDx for ; Thu, 28 Mar 2024 18:07:28 +0000 (UTC) (envelope-from lexi@le-fay.org) Received: from thyme.eden.le-Fay.ORG (THYME.EDEN.LE-FAY.ORG [81.187.47.194]) by mx1.freebsd.org (Postfix) with ESMTP id 4V5BMg3XXGz4C8p for ; Thu, 28 Mar 2024 18:07:27 +0000 (UTC) (envelope-from lexi@le-fay.org) Authentication-Results: mx1.freebsd.org; dkim=pass header.d=le-fay.org header.s=thyme header.b="RIp2Js/J"; dmarc=none; spf=pass (mx1.freebsd.org: domain of lexi@le-fay.org designates 81.187.47.194 as permitted sender) smtp.mailfrom=lexi@le-fay.org Received: from iris.eden.le-Fay.ORG (IRIS.EDEN.LE-FAY.ORG [IPv6:2001:8b0:aab5:106:3::6]) by thyme.eden.le-Fay.ORG (Postfix) with ESMTP id 6E05F5C for ; Thu, 28 Mar 2024 18:07:24 +0000 (GMT) DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=le-fay.org; s=thyme; t=1711649244; bh=yNU+w8pZMGQ0v17XVS7VPgsauI++R++GiBigNkSU8hE=; h=Date:From:To:Subject; b=RIp2Js/Je7ypVRxmKogX8WqjZXnQzRbdakiCQr25xb/NAI6zYyc1Ydg8fK/0czdaY YZ5Q95ahomxysEw5/QvmdOu7fgmiVQY/2+sc09KYalEr+mq9mKbcRM6eN0ydG3fFv5 7LhsGr42Va3+by6vl0M1qHmPkH/mg/S2ItpPw6Lg= Received: from ilythia.eden.le-fay.org (ILYTHIA.EDEN.LE-FAY.ORG [IPv6:2001:8b0:aab5:106:3::10]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (secp384r1) server-digest SHA384) (No client certificate requested) by iris.eden.le-Fay.ORG (Postfix) with ESMTPSA id C33DF2C0400 for ; Thu, 28 Mar 2024 18:07:24 +0000 (GMT) Date: Thu, 28 Mar 2024 18:07:24 +0000 From: Lexi Winter To: freebsd-questions@freebsd.org Subject: small form factor router recommendations Message-ID: Mail-Followup-To: freebsd-questions@freebsd.org List-Id: User questions List-Archive: https://lists.freebsd.org/archives/freebsd-questions List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-questions@freebsd.org X-BeenThere: freebsd-questions@freebsd.org MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha256; protocol="application/pgp-signature"; boundary="dSfpkZIIONd8QEel" Content-Disposition: inline X-Spamd-Bar: ----- X-Spamd-Result: default: False [-5.50 / 15.00]; SIGNED_PGP(-2.00)[]; NEURAL_HAM_LONG(-1.00)[-1.000]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; NEURAL_HAM_SHORT(-1.00)[-1.000]; R_SPF_ALLOW(-0.20)[+ip4:81.187.47.194]; R_DKIM_ALLOW(-0.20)[le-fay.org:s=thyme]; MIME_GOOD(-0.20)[multipart/signed,text/plain]; RCVD_NO_TLS_LAST(0.10)[]; RCPT_COUNT_ONE(0.00)[1]; DKIM_TRACE(0.00)[le-fay.org:+]; DMARC_NA(0.00)[le-fay.org]; MIME_TRACE(0.00)[0:+,1:+,2:~]; TO_MATCH_ENVRCPT_ALL(0.00)[]; ARC_NA(0.00)[]; FROM_HAS_DN(0.00)[]; RCVD_VIA_SMTP_AUTH(0.00)[]; ASN(0.00)[asn:20712, ipnet:81.187.0.0/16, country:GB]; TO_DN_NONE(0.00)[]; RCVD_COUNT_TWO(0.00)[2]; FROM_EQ_ENVFROM(0.00)[]; MISSING_XM_UA(0.00)[]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; MLMMJ_DEST(0.00)[freebsd-questions@freebsd.org]; MID_RHS_MATCH_FROMTLD(0.00)[]; DWL_DNSWL_NONE(0.00)[le-fay.org:dkim]; RCVD_IN_DNSWL_NONE(0.00)[81.187.47.194:from] X-Rspamd-Queue-Id: 4V5BMg3XXGz4C8p --dSfpkZIIONd8QEel Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable hi all, i'm looking for an SFF or single-board computer that can run FreeBSD, for routing (FTTC, IPsec, Wireguard) on a home/soho network. specifically, i'd like: - at least one SFP cage - at least one 1Gbps RJ-45 port - a CPU fast enough to run PPPoE and ipfw at 2Gbps (1G up / 1G down) - arm64 or amd64 - passive cooling or quiet fan - preferably not too expensive - around =A3/$200 would be ideal an SFP+ cage and/or a 2.5Gbps Ethernet port would be nice but aren't required. i looked at the SolidRun ClearFog CN9130 [0], which looks like it meets all my requirements, but it seems like the CN9130 SoC isn't well supported in FreeBSD.=20 can anyone recommend a suitable system? thanks, lexi. [0] https://www.solid-run.com/embedded-networking/marvell-octeon-tx2-family= /clearfog-cn9130/ --dSfpkZIIONd8QEel Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iQGzBAABCAAdFiEEuwt6MaPcv/+Mo+ftDHqbqZ41x5kFAmYFsdwACgkQDHqbqZ41 x5lrogv+OkirSVhaTKbH0SPxtgifbhJZCoApgx+H4shPpxFhLlEzMHTrniBmY9Zq ZhGk232P8hl0XR+dC0jBJ/fxjvN8Q2nBmgHwxMctKBwlu3CIf5c9vv6SHxf6hOdj uBh/q0rha6hgQD7Hthd7fLrznt8jT2TV5BvmYqCnFt4Y6T9EQmVgHIrIBwVETcXC QnmaJ6SB9lDOabT9UTWQ8vkuZuF7MoqAL1uFad0ppmx9jA45fWcvPH3kb18gnIhJ SwBCa02OBCqo69vH8M57+lBj6dr9EgYrMCUt1/KxuX47iChAZzopQAuN0FTuPtxK /iSnckUBTKjd+p08M5wN7FCj7v7td5O9u68vJ7YcOhLfIsp4dinNsTu1OH71zrSj TzVwswurq4U0yT9HvlJQEH+vNuIBhsLeEF+6vWmULsCt1yNkG/La1ag48Ju8DOLU PFwh6tQ6RZIERn7TgUspk0Di/bLOMcqc8BZfbl567yzrCtsV/2gcXACLkYc95piD Xjdz1FUz =U7kp -----END PGP SIGNATURE----- --dSfpkZIIONd8QEel-- From nobody Thu Mar 28 18:19:52 2024 X-Original-To: freebsd-questions@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4V5BfB4p6dz5GRYW for ; Thu, 28 Mar 2024 18:20:02 +0000 (UTC) (envelope-from alex@alexburke.ca) Received: from out-182.mta0.migadu.com (out-182.mta0.migadu.com [91.218.175.182]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4V5BfB2lqCz4Fsm for ; Thu, 28 Mar 2024 18:20:02 +0000 (UTC) (envelope-from alex@alexburke.ca) Authentication-Results: mx1.freebsd.org; none List-Id: User questions List-Archive: https://lists.freebsd.org/archives/freebsd-questions List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-questions@freebsd.org X-BeenThere: freebsd-questions@freebsd.org MIME-Version: 1.0 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=alexburke.ca; s=key1; t=1711649994; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: in-reply-to:in-reply-to:references:references; bh=nkKwDvLvmzgOLUBmemEY4LeSrwZJeC6xc55/piIsazk=; b=WsIEFFBJGK3GFo1vg4Op1wi+3pfO1qnPlvaaFvG2r7hxxpsHrROONyqzlTEkuRV+pZvyo3 kWKYOw0MMGQwWRQr/mBPT/7CDFKS8JZBfkHQunf8GAqMMcLVhfwKvLB9AqlvV1l90fRH90 EtgGBKu2uRtmcZHTTR0BHtHfMSRFHi0= Date: Thu, 28 Mar 2024 18:19:52 +0000 Content-Type: multipart/alternative; boundary="4d99baec-95a5-4c1d-9c5a-02281e6308c8-1" X-Report-Abuse: Please report any abuse attempt to abuse@migadu.com and include these headers. From: alex@alexburke.ca Message-ID: <988f0667c2864ce39c4d66d381fb4a8e0bd75611@alexburke.ca> TLS-Required: No Subject: Re: small form factor router recommendations To: "Lexi Winter" , freebsd-questions@freebsd.org In-Reply-To: References: X-Migadu-Flow: FLOW_OUT X-Spamd-Bar: ---- X-Rspamd-Pre-Result: action=no action; module=replies; Message is reply to one we originated X-Spamd-Result: default: False [-4.00 / 15.00]; REPLY(-4.00)[]; ASN(0.00)[asn:202172, ipnet:91.218.175.0/24, country:CH] X-Rspamd-Queue-Id: 4V5BfB2lqCz4Fsm --4d99baec-95a5-4c1d-9c5a-02281e6308c8-1 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable Hi Lexi, The PC Engines stuff is great, even though it's being discontinued. They = are bulletproof. https://pcengines.ch/apu6b4.htm Another choice is Teklager: https://teklager.se/en/ As usual, you get what you pay for. Cheers, Alex March 28, 2024 at 7:07 PM, "Lexi Winter" wrote: >=20 >=20hi all, >=20 >=20i'm looking for an SFF or single-board computer that can run FreeBSD, >=20 >=20for routing (FTTC, IPsec, Wireguard) on a home/soho network. >=20 >=20specifically, i'd like: >=20 >=20- at least one SFP cage >=20 >=20- at least one 1Gbps RJ-45 port >=20 >=20- a CPU fast enough to run PPPoE and ipfw at 2Gbps (1G up / 1G down) >=20 >=20- arm64 or amd64 >=20 >=20- passive cooling or quiet fan >=20 >=20- preferably not too expensive - around =C2=A3/$200 would be ideal >=20 >=20an SFP+ cage and/or a 2.5Gbps Ethernet port would be nice but aren't >=20 >=20required. >=20 >=20i looked at the SolidRun ClearFog CN9130 [0], which looks like it mee= ts >=20 >=20all my requirements, but it seems like the CN9130 SoC isn't well >=20 >=20supported in FreeBSD.=20 >=20 > can anyone recommend a suitable system? >=20 >=20 thanks, lexi. >=20 >=20[0] https://www.solid-run.com/embedded-networking/marvell-octeon-tx2-= family/clearfog-cn9130/ > --4d99baec-95a5-4c1d-9c5a-02281e6308c8-1 Content-Type: text/html; charset="utf-8" Content-Transfer-Encoding: quoted-printable
Hi Lexi,

<= /div>
The PC Engines stuff is great, even though it's being discontin= ued. They are bulletproof.

<= div>Another choice is Teklager:

As usua= l, you get what you pay for.

Cheers,
Alex

March 28, 2024 at 7:07 PM, "Lexi W= inter" <lexi@le-fay.org= > wrote:

hi all,


i= 'm looking for an SFF or single-board computer that can run FreeBSD,
=
for routing (FTTC, IPsec, Wireguard) on a home/soho network.

specifically, i'd like:

- at least one SFP cage

- at least one 1Gbps RJ-45 p= ort

- a CPU fast enough to run PPPoE and ipfw at 2Gbps (1G = up / 1G down)

- arm64 or amd64

- passive cool= ing or quiet fan

- preferably not too expensive - around = =C2=A3/$200 would be ideal


an SFP+ cage and/= or a 2.5Gbps Ethernet port would be nice but aren't

require= d.


i looked at the SolidRun ClearFog CN9130 = [0], which looks like it meets

all my requirements, but it = seems like the CN9130 SoC isn't well

supported in FreeBSD. =


can anyone recommend a suitable system?

thanks, lexi.


[0]= https://www.solid-run.com/= embedded-networking/marvell-octeon-tx2-family/clearfog-cn9130/

--4d99baec-95a5-4c1d-9c5a-02281e6308c8-1-- From nobody Thu Mar 28 19:03:46 2024 X-Original-To: freebsd-questions@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4V5Ccr0xGYz5FnSS for ; Thu, 28 Mar 2024 19:03:56 +0000 (UTC) (envelope-from mike@sentex.net) Received: from smarthost1.sentex.ca (smarthost1.sentex.ca [IPv6:2607:f3e0:0:1::12]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smarthost1.sentex.ca", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4V5Ccq0p0dz4Lwk for ; Thu, 28 Mar 2024 19:03:55 +0000 (UTC) (envelope-from mike@sentex.net) Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of mike@sentex.net designates 2607:f3e0:0:1::12 as permitted sender) smtp.mailfrom=mike@sentex.net Received: from pyroxene2a.sentex.ca (pyroxene19.sentex.ca [199.212.134.19]) by smarthost1.sentex.ca (8.17.1/8.16.1) with ESMTPS id 42SJ3l2M012996 (version=TLSv1.3 cipher=TLS_AES_256_GCM_SHA384 bits=256 verify=FAIL) for ; Thu, 28 Mar 2024 15:03:47 -0400 (EDT) (envelope-from mike@sentex.net) Received: from [IPV6:2607:f3e0:0:4:44fc:ea1d:d904:c088] ([IPv6:2607:f3e0:0:4:44fc:ea1d:d904:c088]) by pyroxene2a.sentex.ca (8.17.1/8.15.2) with ESMTPS id 42SJ3kos038926 (version=TLSv1.3 cipher=TLS_AES_128_GCM_SHA256 bits=128 verify=NO) for ; Thu, 28 Mar 2024 15:03:46 -0400 (EDT) (envelope-from mike@sentex.net) Content-Type: multipart/alternative; boundary="------------jVHbcPg0eNsDXlwiujSKwtaH" Message-ID: <9b457132-f229-4d6c-9373-1def6365b969@sentex.net> Date: Thu, 28 Mar 2024 15:03:46 -0400 List-Id: User questions List-Archive: https://lists.freebsd.org/archives/freebsd-questions List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-questions@freebsd.org X-BeenThere: freebsd-questions@freebsd.org MIME-Version: 1.0 User-Agent: Mozilla Thunderbird Subject: Re: small form factor router recommendations To: freebsd-questions@freebsd.org References: Content-Language: en-US From: mike tancsa Autocrypt: addr=mike@sentex.net; keydata= xsBNBFywzOMBCACoNFpwi5MeyEREiCeHtbm6pZJI/HnO+wXdCAWtZkS49weOoVyUj5BEXRZP xflV2ib2hflX4nXqhenaNiia4iaZ9ft3I1ebd7GEbGnsWCvAnob5MvDZyStDAuRxPJK1ya/s +6rOvr+eQiXYNVvfBhrCfrtR/esSkitBGxhUkBjOti8QwzD71JVF5YaOjBAs7jZUKyLGj0kW yDg4jUndudWU7G2yc9GwpHJ9aRSUN8e/mWdIogK0v+QBHfv/dsI6zVB7YuxCC9Fx8WPwfhDH VZC4kdYCQWKXrm7yb4TiVdBh5kgvlO9q3js1yYdfR1x8mjK2bH2RSv4bV3zkNmsDCIxjABEB AAHNHW1pa2UgdGFuY3NhIDxtaWtlQHNlbnRleC5uZXQ+wsCOBBMBCAA4FiEEmuvCXT0aY6hs 4SbWeVOEFl5WrMgFAl+pQfkCGwMFCwkIBwIGFQoJCAsCBBYCAwECHgECF4AACgkQeVOEFl5W rMiN6ggAk3H5vk8QnbvGbb4sinxZt/wDetgk0AOR9NRmtTnPaW+sIJEfGBOz47Xih+f7uWJS j+uvc9Ewn2Z7n8z3ZHJlLAByLVLtcNXGoRIGJ27tevfOaNqgJHBPbFOcXCBBFTx4MYMM4iAZ cDT5vsBTSaM36JZFtHZBKkuFEItbA/N8ZQSHKdTYMIA7A3OCLGbJBqloQ8SlW4MkTzKX4u7R yefAYQ0h20x9IqC5Ju8IsYRFacVZconT16KS81IBceO42vXTN0VexbVF2rZIx3v/NT75r6Vw 0FlXVB1lXOHKydRA2NeleS4NEG2vWqy/9Boj0itMfNDlOhkrA/0DcCurMpnpbM7ATQRcsMzk AQgA1Dpo/xWS66MaOJLwA28sKNMwkEk1Yjs+okOXDOu1F+0qvgE8sVmrOOPvvWr4axtKRSG1 t2QUiZ/ZkW/x/+t0nrM39EANV1VncuQZ1ceIiwTJFqGZQ8kb0+BNkwuNVFHRgXm1qzAJweEt RdsCMohB+H7BL5LGCVG5JaU0lqFU9pFP40HxEbyzxjsZgSE8LwkI6wcu0BLv6K6cLm0EiHPO l5G8kgRi38PS7/6s3R8QDsEtbGsYy6O82k3zSLIjuDBwA9GRaeigGppTxzAHVjf5o9KKu4O7 gC2KKVHPegbXS+GK7DU0fjzX57H5bZ6komE5eY4p3oWT/CwVPSGfPs8jOwARAQABwsB2BBgB CAAgFiEEmuvCXT0aY6hs4SbWeVOEFl5WrMgFAl+pQfkCGwwACgkQeVOEFl5WrMiVqwf9GwU8 c6cylknZX8QwlsVudTC8xr/L17JA84wf03k3d4wxP7bqy5AYy7jboZMbgWXngAE/HPQU95NM aukysSnknzoIpC96XZJ0okLBXVS6Y0ylZQ+HrbIhMpuQPoDweoF5F9wKrsHRoDaUK1VR706X rwm4HUzh7Jk+auuMYfuCh0FVlFBEuiJWMLhg/5WCmcRfiuB6F59ZcUQrwLEZeNhF2XJV4KwB Tlg7HCWO/sy1foE5noaMyACjAtAQE9p5kGYaj+DuRhPdWUTsHNuqrhikzIZd2rrcMid+ktb0 NvtvswzMO059z1YGMtGSqQ4srCArju+XHIdTFdiIYbd7+jeehg== In-Reply-To: X-Scanned-By: MIMEDefang 2.86 X-Spamd-Bar: --- X-Spamd-Result: default: False [-3.35 / 15.00]; NEURAL_HAM_LONG(-1.00)[-1.000]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; NEURAL_HAM_SHORT(-0.96)[-0.964]; R_SPF_ALLOW(-0.20)[+ip6:2607:f3e0::/32]; MIME_GOOD(-0.10)[multipart/alternative,text/plain]; RCVD_IN_DNSWL_LOW(-0.10)[199.212.134.19:received]; XM_UA_NO_VERSION(0.01)[]; RCPT_COUNT_ONE(0.00)[1]; ASN(0.00)[asn:11647, ipnet:2607:f3e0::/32, country:CA]; MID_RHS_MATCH_FROM(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; FREEFALL_USER(0.00)[mike]; R_DKIM_NA(0.00)[]; MLMMJ_DEST(0.00)[freebsd-questions@freebsd.org]; DMARC_NA(0.00)[sentex.net]; FROM_EQ_ENVFROM(0.00)[]; FROM_HAS_DN(0.00)[]; ARC_NA(0.00)[]; RCVD_COUNT_TWO(0.00)[2]; TO_MATCH_ENVRCPT_ALL(0.00)[]; TO_DN_NONE(0.00)[]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; RCVD_TLS_ALL(0.00)[] X-Rspamd-Queue-Id: 4V5Ccq0p0dz4Lwk This is a multi-part message in MIME format. --------------jVHbcPg0eNsDXlwiujSKwtaH Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 8bit On 3/28/2024 2:07 PM, Lexi Winter wrote: > hi all, > > i'm looking for an SFF or single-board computer that can run FreeBSD, > for routing (FTTC, IPsec, Wireguard) on a home/soho network. > > specifically, i'd like: > > - at least one SFP cage > - at least one 1Gbps RJ-45 port > - a CPU fast enough to run PPPoE and ipfw at 2Gbps (1G up / 1G down) > - arm64 or amd64 > - passive cooling or quiet fan > - preferably not too expensive - around £/$200 would be ideal > > [0]https://www.solid-run.com/embedded-networking/marvell-octeon-tx2-family/clearfog-cn9130/ We are sort of the same boat since PCEngines is getting out of the game.  We looked at a few Aliexpress vendors (e.g. Topton) and theygenerally are all of the same make and seem OK quality. However, I dont have a long track record like I do with PCEngines which were fantastically reliable despite the hostile environments we deployed them to. However, dont expect consistency of parts from the Aliexpress stuff. Also, stay away from any of the Alder Lake systems with E-cores as FreeBSD does not support that yet :( ---Mike --------------jVHbcPg0eNsDXlwiujSKwtaH Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: 8bit
On 3/28/2024 2:07 PM, Lexi Winter wrote:
hi all,

i'm looking for an SFF or single-board computer that can run FreeBSD,
for routing (FTTC, IPsec, Wireguard) on a home/soho network.

specifically, i'd like:

- at least one SFP cage
- at least one 1Gbps RJ-45 port
- a CPU fast enough to run PPPoE and ipfw at 2Gbps (1G up / 1G down)
- arm64 or amd64
- passive cooling or quiet fan
- preferably not too expensive - around £/$200 would be ideal

[0] https://www.solid-run.com/embedded-networking/marvell-octeon-tx2-family/clearfog-cn9130/

We are sort of the same boat since PCEngines is getting out of the game.  We looked at a few Aliexpress vendors (e.g. Topton) and they generally are all of the same make and seem OK quality. However, I dont have a long track record like I do with PCEngines which were fantastically reliable despite the hostile environments we deployed them to. However, dont expect consistency of parts from the Aliexpress stuff. Also, stay away from any of the Alder Lake systems with E-cores as FreeBSD does not support that yet :(

---Mike

--------------jVHbcPg0eNsDXlwiujSKwtaH-- From nobody Thu Mar 28 19:29:01 2024 X-Original-To: freebsd-questions@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4V5D9s0hXfz5Fqmm for ; Thu, 28 Mar 2024 19:29:05 +0000 (UTC) (envelope-from steve@copacetic.net) Received: from starlight.copacetic.net (starlight.copacetic.net [166.78.105.238]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4V5D9q73lnz4QKk for ; Thu, 28 Mar 2024 19:29:03 +0000 (UTC) (envelope-from steve@copacetic.net) Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of steve@copacetic.net designates 166.78.105.238 as permitted sender) smtp.mailfrom=steve@copacetic.net Received: from [172.16.200.151] (unknown [73.149.127.197]) (using TLSv1.2 with cipher AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by starlight.copacetic.net (Postfix) with ESMTPSA id 6FB3B12C001 for ; Thu, 28 Mar 2024 19:29:02 +0000 (UTC) Message-ID: <5f00aca5-296d-441b-9c98-d120c839f1e3@copacetic.net> Date: Thu, 28 Mar 2024 15:29:01 -0400 List-Id: User questions List-Archive: https://lists.freebsd.org/archives/freebsd-questions List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-questions@freebsd.org X-BeenThere: freebsd-questions@freebsd.org MIME-Version: 1.0 User-Agent: Mozilla Thunderbird Subject: Re: 14.0-RELEASE-p6 High acpi_task_* CPU utilization From: Steve Bernacki To: freebsd-questions@FreeBSD.org References: Content-Language: en-US In-Reply-To: Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 8bit X-Spamd-Bar: --- X-Spamd-Result: default: False [-3.10 / 15.00]; NEURAL_HAM_LONG(-1.00)[-0.996]; NEURAL_HAM_SHORT(-0.98)[-0.981]; NEURAL_HAM_MEDIUM(-0.94)[-0.935]; R_SPF_ALLOW(-0.20)[+ip4:166.78.105.238]; MIME_GOOD(-0.10)[text/plain]; ONCE_RECEIVED(0.10)[]; XM_UA_NO_VERSION(0.01)[]; RCVD_VIA_SMTP_AUTH(0.00)[]; RCVD_COUNT_ONE(0.00)[1]; RCPT_COUNT_ONE(0.00)[1]; FREEFALL_USER(0.00)[steve]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:19994, ipnet:166.78.64.0/18, country:US]; R_DKIM_NA(0.00)[]; ARC_NA(0.00)[]; TO_DN_NONE(0.00)[]; FROM_EQ_ENVFROM(0.00)[]; FROM_HAS_DN(0.00)[]; MID_RHS_MATCH_FROM(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; DMARC_NA(0.00)[copacetic.net]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; MLMMJ_DEST(0.00)[freebsd-questions@FreeBSD.org]; RCVD_TLS_ALL(0.00)[] X-Rspamd-Queue-Id: 4V5D9q73lnz4QKk Some additional information: I booted into Linux and noted similar behavior. I was able to identify that the cause of the consumed CPU us due to tens of thousands of interrupts being thrown every second: # grep -Ev "^[ ]*0" /sys/firmware/acpi/interrupts/gpe??; sleep 1; echo ""; grep -Ev "^[ ]*0" /sys/firmware/acpi/interrupt s/gpe?? /sys/firmware/acpi/interrupts/gpe0F: 7932735     STS enabled unmasked /sys/firmware/acpi/interrupts/gpe2C: 7932751  EN STS enabled unmasked /sys/firmware/acpi/interrupts/gpe39: 7932147  EN STS enabled unmasked /sys/firmware/acpi/interrupts/gpe0F: 7940917     STS enabled unmasked /sys/firmware/acpi/interrupts/gpe2C: 7940918  EN STS enabled unmasked /sys/firmware/acpi/interrupts/gpe39: 7940307     STS enabled unmasked Under Linux, I was able to mask these interrupts [1], and CPU utilization dropped to zero: # echo "mask" > /sys/firmware/acpi/interrupts/gpe0F # echo "mask" > /sys/firmware/acpi/interrupts/gpe2C # echo "mask" > /sys/firmware/acpi/interrupts/gpe39 Booting back into FreeBSD, I was able to confirm that acpi0 is throwing the interrupts: steve@fw2:~ $ vmstat -i interrupt                          total       rate irq1: atkbd0                           2          0 irq9: acpi0                       652619       5426 irq39: sdhci_pci0                     13          0 cpu0:timer                        131000       1089 cpu1:timer                         95780        796 cpu2:timer                        109171        908 cpu3:timer                        105658        878 irq128: hdac0                         10          0 irq129: ahci0                       1698         14 irq130: re0                          869          7 irq132: xhci0                        156          1 irq133: iwm0                          22          0 Total                            1096998       9120 I'm going to report this to the system manufacturer, but I don't have high hopes that they'll fix the BIOS. Is there a way under FreeBSD to mask/disable these noisy interrupts? I did some searching but could not find the FreeBSD equivalent of masking in Linux. Thanks Steve [1] https://unix.stackexchange.com/questions/588018/kworker-thread-kacpid-notify-kacpid-hogging-60-70-of-cpu On 3/28/2024 11:20 AM, Steve Bernacki wrote: > Hello, > > I've just installed FreeBSD 14.0-RELEASE-p6 (GENERIC) on a AWOW Mini > PC [1]. Completely idle, top(1) reports unusually high system CPU usage: > >   CPU:  0.0% user,  0.0% nice, 27.7% system,  0.0% interrupt, 72.3% idle > > Running top -SH reveals that the CPU time is being consumed by kernel > acpi_tasks: > >   PID USERNAME    PRI NICE   SIZE    RES STATE    C   TIME    WCPU > COMMAND >    11 root        187 ki31     0B    64K CPU0     0  29:22  97.15% > idle{idle: cpu0} >    11 root        187 ki31     0B    64K RUN      2  22:05  74.21% > idle{idle: cpu2} >    11 root        187 ki31     0B    64K CPU3     3  22:11  73.37% > idle{idle: cpu3} >    11 root        187 ki31     0B    64K RUN      1  21:59  70.21% > idle{idle: cpu1} >     0 root          8    -     0B  1456K -        0   8:08  29.74% > kernel{acpi_task_1} >     0 root          8    -     0B  1456K CPU3     3   8:30  28.67% > kernel{acpi_task_2} >     0 root          8    -     0B  1456K CPU1     1   8:31  26.09% > kernel{acpi_task_0} > > The BIOS configurables for this system are pretty sparse; I'm not able > to see or adjust any ACPI settings. Relevant (I hope) snippets from > dmesg below: > > ====== > CPU: Intel(R) Celeron(R) CPU N3450 @ 1.10GHz (1094.62-MHz K8-class CPU) >   Origin="GenuineIntel"  Id=0x506c9  Family=0x6  Model=0x5c Stepping=9 > Features=0xbfebfbff > > Features2=0x4ff8ebb7 > >   AMD Features=0x2c100800 >   AMD Features2=0x101 >   Structured Extended > Features=0x2294e283 >   XSAVE Features=0xf >   VT-x: PAT,HLT,MTF,PAUSE,EPT,UG,VPID,VID,PostIntr >   TSC: P-state invariant, performance statistics > real memory  = 6442450944 (6144 MB) > avail memory = 5978120192 (5701 MB) > Event timer "LAPIC" quality 600 > ACPI APIC Table: > [snip] > smbios0: at iomem 0xf05e0-0xf05fe > smbios0: Version: 3.0, BCD Revision: 3.0 > aesni0: > acpi0: > acpi0: Power Button (fixed) > unknown: I/O range not supported > ACPI Error: No handler for Region [ECF2] (0xfffff800038c2680) > [EmbeddedControl] (20221020/evregion-292) > ACPI Error: Region EmbeddedControl (ID=3) has no handler > (20221020/exfldio-428) > ACPI Error: Aborting method \134_SB.PCI0.SBRG.H_EC.BAT0._STA due to > previous error (AE_NOT_EXIST) (20221020/psparse-689) > cpu0: on acpi0 > attimer0: port 0x40-0x43,0x50-0x53 irq 0 on acpi0 > [snip] > Timecounter "ACPI-fast" frequency 3579545 Hz quality 900 > acpi_timer0: <32-bit timer at 3.579545MHz> port 0x408-0x40b on acpi0 > acpi_ec0: port 0x62,0x66 on acpi0 > pcib0: port 0xcf8-0xcff on acpi0 > pci0: on pcib0 > ====== > > Relevant kenv output: > > ====== > acpi.oem="ALASKA" > acpi.revision="2" > acpi.rsdp="0x000f05b0" > acpi.rsdt="0x793a5030" > acpi.xsdt="0x00000000793a50c0" > acpi.xsdt_length="36" > acpi_dsdt_load="NO" > acpi_dsdt_name="/boot/acpi_dsdt.aml" > acpi_dsdt_type="acpi_dsdt" > acpi_video_load="NO" > hint.acpi_throttle.0.disabled="1" > smbios.bios.reldate="09/30/2022" > smbios.bios.revision="4.6" > smbios.bios.vendor="American Megatrends Inc." > smbios.bios.version="4.06" > smbios.chassis.type="Mini PC" > smbios.memory.enabled="6291456" > smbios.planar.maker="AWOW Technology Co., Ltd." > smbios.planar.product="PC BOX" > smbios.system.product="AK34" > ====== > > The few search results for similar issues I've found suggest trying to > disable ACPI altogether, which just results in the kernel immediately > panicking when booting. > > Any suggestions on how I can troubleshoot this further? > > Thank you > Steve > > [1] https://www.amazon.com/gp/product/B0B4RMLCH7/?th=1 > > > From nobody Thu Mar 28 20:04:05 2024 X-Original-To: freebsd-questions@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4V5DyL2cH8z5Fv3q for ; Thu, 28 Mar 2024 20:04:10 +0000 (UTC) (envelope-from lexi@le-fay.org) Received: from thyme.eden.le-Fay.ORG (THYME.EDEN.LE-FAY.ORG [81.187.47.194]) by mx1.freebsd.org (Postfix) with ESMTP id 4V5DyL1hF6z4XfB for ; Thu, 28 Mar 2024 20:04:10 +0000 (UTC) (envelope-from lexi@le-fay.org) Authentication-Results: mx1.freebsd.org; none Received: from iris.eden.le-Fay.ORG (IRIS.EDEN.LE-FAY.ORG [IPv6:2001:8b0:aab5:106:3::6]) by thyme.eden.le-Fay.ORG (Postfix) with ESMTP id 2D37574; Thu, 28 Mar 2024 20:04:05 +0000 (GMT) DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=le-fay.org; s=thyme; t=1711656245; bh=jvKZ82mAE6EqQCNoIAYmQkCDtroNFEi+WOPQnXj4VLU=; h=Date:From:To:Cc:Subject:References:In-Reply-To; b=daC95+ZRCquJPxAzcJNUKvOYWrkSlizvOGnhnT7bOZR7gNOLdkpTB1+NCFvqfslrv +WHnP0+HD4TWSDlkhP1aKHoupCous9bjCvSiur3OP+re3qRF0mDGyzHubj3wy9h2NB FjTtc+VcqwDjiNZz33MKg2b0zDdkgRYPAmXDKfHw= Received: from ilythia.eden.le-fay.org (ILYTHIA.EDEN.LE-FAY.ORG [IPv6:2001:8b0:aab5:106:3::10]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (secp384r1) server-digest SHA384) (No client certificate requested) by iris.eden.le-Fay.ORG (Postfix) with ESMTPSA id 7F3F62C0400; Thu, 28 Mar 2024 20:04:05 +0000 (GMT) Date: Thu, 28 Mar 2024 20:04:05 +0000 From: Lexi Winter To: alex@alexburke.ca Cc: freebsd-questions@freebsd.org Subject: Re: small form factor router recommendations Message-ID: Mail-Followup-To: alex@alexburke.ca, freebsd-questions@freebsd.org References: <988f0667c2864ce39c4d66d381fb4a8e0bd75611@alexburke.ca> List-Id: User questions List-Archive: https://lists.freebsd.org/archives/freebsd-questions List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-questions@freebsd.org X-BeenThere: freebsd-questions@freebsd.org MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha256; protocol="application/pgp-signature"; boundary="foPeWtmGPeIFYlgd" Content-Disposition: inline In-Reply-To: <988f0667c2864ce39c4d66d381fb4a8e0bd75611@alexburke.ca> X-Spamd-Bar: ---- X-Rspamd-Pre-Result: action=no action; module=replies; Message is reply to one we originated X-Spamd-Result: default: False [-4.00 / 15.00]; REPLY(-4.00)[]; ASN(0.00)[asn:20712, ipnet:81.187.0.0/16, country:GB] X-Rspamd-Queue-Id: 4V5DyL1hF6z4XfB --foPeWtmGPeIFYlgd Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable hi Alex, alex@alexburke.ca: > The PC Engines stuff is great, even though it's being discontinued. They = are bulletproof. > https://pcengines.ch/apu6b4.htm i've used PC Engines stuff in the past (many years ago) and was quite happy with it, but based on reports from other users, it seems like the 1GHz CPU is not fast enough to route PPPoE at 1Gbps. i think this is at least partly because, even with net.isr.dispatch=3Ddeferred, PPPoE is too single-core-bound.=20 but i'd be interested to know if anyone has managed to achieve 1Gbps PPPoE throughput on any of the PC Engines boards. > Another choice is Teklager: > https://teklager.se/en/ this looks quite interesting, thanks! regards, lexi. --foPeWtmGPeIFYlgd Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iQGzBAABCAAdFiEEuwt6MaPcv/+Mo+ftDHqbqZ41x5kFAmYFzTIACgkQDHqbqZ41 x5lzigwAhgc5jGPAOpySNXToe5mvjPRlIwx71mWAnrJz6ZbWaijhvIdkQCSkmcoA m2qTYp1bSJNAdg6vHwPAlkWCfge+AQK7/s/FQttCuHMfG3wDnHftkMrjvld7axA/ YI3Irab7EnMDiSxlV0IwERsNdwO722t3ldlhx1L6OeRRqFxT76/DIH2CttNfCEvy xQNjhtIcXO/gcUAVvH/3/y/OqsGQQyG5dC7ErFAtBRL1uPFh0lFhLmtQRXM93vKx kwxbut9tEQW4OhLYlQ0j00bWQ2nryHeSmdFRxamqAL4k9CNZ76njJM5defq6XYqK hi04498B52nFJOf7rc4AbRN4ncGEqgqugmHT8IREu8EVaBxKGvOftO5YWqglEP9n PuJoCdm/1JJcpEn+v1dkbUbCksirQe2XW82wERHQjgkFFXAbkki3dhy7ozSyi7b4 2AmrpUfJIsPbLVcnzwc3fcJHD+mmxxeRw1/BAJWM4PTGQzMH08hXmhwJFlaT31k3 3onQI3WU =K7CD -----END PGP SIGNATURE----- --foPeWtmGPeIFYlgd--